Google Forms Project

google_forms_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Google Forms

google_forms

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-3834 1Google Forms Project 1Google Forms Apr 25, 2025 Nov 28, 2022 N/A· v4 4.8 MEDIUM· v3 N/A· v2 The Google Forms WordPress plugin through 0.95 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilter...Show more The Google Forms WordPress plugin through 0.95 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).Show less
CVE-2018-20988 1Google Forms Project 1Google Forms Nov 21, 2024 Aug 22, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The wpgform plugin before 0.94 for WordPress has eval injection in the CAPTCHA calculation.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-3834

1Google Forms Project

1Google Forms

Apr 25, 2025

Nov 28, 2022

N/A· v4

4.8 MEDIUM· v3

N/A· v2

The Google Forms WordPress plugin through 0.95 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilter...Show more

CVE-2018-20988

1Google Forms Project

1Google Forms

Nov 21, 2024

Aug 22, 2019

N/A· v4

7.5 HIGH· v3

5.0 MEDIUM· v2

The wpgform plugin before 0.94 for WordPress has eval injection in the CAPTCHA calculation.